Veracode Vulnerability DatabaseVERACODE:24621Privilege Escalation
EPSS
Percentile
5.1%
networkmanager is vulnerable to privilege escalation. The vulnerability exists as it was found that NetworkManager did not properly enforce PolicyKit settings controlling the permissions to configure wireless network sharing. A local, unprivileged user could use this flaw to bypass intended PolicyKit restrictions, allowing them to enable wireless network sharing.
References
cgit.freedesktop.org/NetworkManager/NetworkManager/plain/NEWS?h=NM_0_8
lists.fedoraproject.org/pipermail/package-announce/2011-August/063665.html
secunia.com/advisories/44858
securitytracker.com/id?1025711
www.mandriva.com/security/advisories?name=MDVSA-2011:171
www.redhat.com/support/errata/RHSA-2011-0930.html
access.redhat.com/errata/RHSA-2011:0930
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=709662
Related
